Nations can no longer afford to go it alone on cyber-security

Cyber-crime knows know borders, so nor should our defences.

Senior representatives from more than 90 governments met in Seoul recently to discuss cyber-space, including cyber-security and cyber-crime. It was the third in a series of international conferences that has followed a push from the UK government to bring a more international perspective to discussions about how to keep cyber-space open while addressing threats.

Cyber-crime does not operate in a world confined by national borders so an international response is our only option. We need to cooperate to protect devices and information infrastructures from malicious entities seeking to steal secrets, deny access to critical services and exploit our identities to commit crimes.

Vulnerable businesses
There is much work to be done. Weaknesses in infrastructures, policy and operations leave us vulnerable and threats to businesses and individuals are frequent and damaging. For example, a sophisticated malicious software recently infected a PC at a small British bakery, then managed to bypass all of the business’s online banking security software and steal £20,000. There is no end to the news of malware, viruses and spam that affect online accounts and home computers.

Recent research indicates that four in five of the UK’s largest quoted companies are unprepared for cyber attacks. The widely reported threats to systems within finance and banking are an uneasy reminder of our vulnerability – and a key priority of the Bank of England and other financial regulators. Even those companies that you might expect to see outsmarting cyber-criminals are not immune. Just a few weeks ago software company Adobe admitted that its system had been hacked and that data from nearly 3 million customers had been stolen. Now there are reports of ransomware attacks across companies in East London’s hi-tech cluster of businesses.

Currently, too many decisions relating to cyber-security rely on inadequate evidence, inconsistent data, deficient reporting and varying rules across networks and systems. This inconsistency on data is apparent in UK government. Two years ago the UK Cabinet Office published a study by Detica, which estimated that cyber-crime costs the UK economy £27bn per year. It gave a breakdown by business sector and type of crime. This type of data is critical for governments, businesses and technology companies to plan appropriate security responses. However, a 2012 study undertaken by Professor Ross Anderson and colleagues for the Ministry of Defence calculated that a more realistic estimate would be closer to £12bn, distributed in significantly different ways to the Detica claims. This would suggest a different pattern of appropriate responses.

Defence beyond borders
A report to which I contributed, Now for the Long Term calls for the creation of an information exchange - CyberEx - to start tackling these issues. It could be funded by governments and businesses with an interest in collecting and analysing data on cyber-attacks to inform their own decisions about cyber-security. Each could share their own information and coordinate with others on responses to international threats. CyberEx could identify weaknesses in the global system, flag up suspicious Internet traffic and malicious software and help countries and businesses develop technical standards for their cyber-security efforts.

It could seek to minimise common vulnerabilities that enable the theft of sensitive information and the distribution of spam through systems, and work closely with international and domestic agencies to prevent common system attacks. The platform could also provide a useful mechanism for stakeholders to work together on responses to collective concerns, such as privacy protection. By providing an accessible, open platform for information exchange, CyberEx could help governments, businesses and individuals to better understand common threat patterns, identify preventative measures and minimise future attacks.

But you are only as strong as your weakest link, so CyberEx would also need to help developing countries improve their cyber infrastructure. For example, Professor Anderson’s MoD study concluded that significant numbers of “stranded traveller” scams and Advance Fee Frauds originate in West Africa, particularly Nigeria.

We are at the start of conversations with interested parties on the potential for CyberEx, so the details of how and where the exchange would be hosted are still to be worked out. The report’s recommendation is a starting point but it is an important one. It could move us closer to using an exchange platform to counter common but high-risk cyber threats. It is a conversation that must continue if we are to meet the challenges posed by increased societal dependence on information infrastructures.

Ian Brown receives funding from the UK Research Councils (currently EPSRC), the European Commission, and BT. He is on the advisory councils of the Open Rights Group, Privacy International and the Foundation for Information Policy Research.

This article was originally published at The Conversation. Read the original article.

The Conversation

We can't fight cyber-crime by ourselves. (Photo: Getty)
Photo: Getty
Show Hide image

Move objects with your mind – telekinesis is coming to a human brain near you

If a user puts on the Neurable headset, they can move virtual objects with their thoughts. 

On 30 July, a blog post on Medium by Michael Thompson, the vice-president of Boston-based start-up Neurable, said his company had perfected a kind of technology which would be “redrawing the boundaries of human experience”. 

Neurable had just fulfilled the pipe dreams of science fiction enthusiasts and video game fanboys, according to Thompson – it had created a telekinetic EEG strap. In plain English, if a user puts on the Neurable headset, and plays a specially-designed virtual reality video game, they can move virtual objects with their thoughts. 

Madrid-based gaming company eStudioFuture collaborated with Neurable to create the game, Awakening. In it, the user breaks out of a government lab, battles robots and interacts with objects around them, all hands-free with Neurable's headset. Awakening debuted at SIGGRAPH, a computer graphics conference in Boston, where it was well received by consumers and investors alike.

The strap (or peripheral, as it’s referred to) works by modifying the industry standard headset of oversized goggles. Neurable's addition has a comb-like structure that reaches past your hair to make contact with the scalp, then detects brain activity via electroencephalogram (EEG) sensors. These detect specific kinds of neural signals. Thanks to a combination of machine-learning software and eye-tracking technology, all the user of the headset has to do is think the word “grab”, and that object will move – for example, throwing a box at the robot trying to stop you from breaking out of a government lab. 

The current conversation around virtual reality, and technologies like it, lurches between optimism and cynicism. Critics have highlighted the narrow range of uses that the current technology is aimed at (think fun facial filters on Snapchat). But after the debut of virtual reality headsets Oculus Rift and HTC Vive at 2016’s Game Developers conference, entrepreneurs are increasingly taking notice of virtual reality's potential to make everyday life more convenient.

Tech giants such as Microsoft, Facebook and Google have all been in on the game since as far back as 2014, when Facebook bought Oculus (of Oculus Rift). Then, in 2016, Nintendo and Niantic (an off-shoot from Google) launched Pokémon Go. One of Microsoft’s leading technical fellows, Alex Kipman, told Polygon that distinctions between virtual reality, augmented reality and mixed reality were arbitrary: "At the end of the day, it’s all on a continuum." 

Oculus’s Jason Rubin has emphasised the potential that VR has to make human life that much more interesting or efficient. Say that you're undergoing a home renovation – potentially, with VR technology, you could pop on your headset and see a hologram of your living room. You could move your virtual furniture around with minimal effort, and then do exactly the same in reality – in half the time and effort. IKEA already offers a similar service in store – imagine being able to do it yourself.

Any kind of experience that is in part virtual reality – from video games to online tours of holiday destinations to interactive displays at museums – will become much more immersive.

Microsoft’s Hololens is already being trialled at University College London Hospital, where students can study detailed holograms of organs, and patients can get an in-depth look at their insides projected in front of them (Hololens won’t be commercially available for a while.) Neurable's ambitions go beyond video games – its headset was designed by neuroscientists who had spent years working in neurotechnology. It offers the potential for important scientific and technological breakthroughs in areas such as prosthetic limbs. 

Whether it was a childhood obsession with Star Wars or out of sheer laziness, as a society, we remain fascinated by the thought of being able to move objects with our minds. But in actual realityVR and similar technologies bring with them a set of prickly questions.

Will students at well-funded schools be able to get a more in-depth look at topography in a geography lesson through VR headsets than their counterparts elsewhere? Would companies be able to maintain a grip on what people do in virtual reality, or would people eventually start to make their own (there are already plenty of DIY tutorials on the internet)? Will governments be able to regulate and monitor the use of insidious technology like augmented reality or mixed reality, and make sure that it doesn't become potentially harmful to minors or infringe on privacy rights? 

Worldwide spending on items such as virtual reality headsets and games is forecast to double every year until 2021, according to recent figures. Industry experts and innovators tend to agree that it remains extremely unlikely you’ll walk into someone examining a hologram on the street. All the same, VR technology like Neurable’s is slowly creeping into the fabric of our lived environment.